yuzu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2025-01-08 08:35:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
16545 commits 88 branches 205 tags 69 MiB
Commit graph

16545 commits

This branch
This branch
All branches
Author SHA1 Message Date
Manuel Pégourié-Gonnard 4ecee83d8a Update config used by ecc-heap.sh 
- optimize a bit
- update default (commented out, so purely cosmetic)

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2022-04-15 09:32:05 +02:00
Manuel Pégourié-Gonnard 6408495f42 Fix alignment in benchmark output 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2022-04-15 09:28:51 +02:00
Manuel Pégourié-Gonnard 8c683f9284 Enable ECDSA in ecc-heap.sh 
Clearly the intention was to enable it, as ECDSA_C was defined, but the
benchmark also requires SHA-256 for ECDSA.

Also, specify "ecdh ecdsa" when invoking the benchmark program, in order
to avoid spurious output about SHA-256.

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2022-04-15 09:27:27 +02:00
Manuel Pégourié-Gonnard b9dee2127e Fix dependency issue 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2022-04-15 09:16:33 +02:00
Gilles Peskine d81b5ae238
Merge pull request #5717 from daverodgman/backport_2.28-alert_reentrant 
Backport 2.28 - make mbedtls_ssl_send_alert_message() reentrant
 2022-04-12 11:05:26 +02:00
Dave Rodgman 50b677d9e5
Merge pull request #5713 from tom-cosgrove-arm/pr-2479-backport-2.28 
Backport 2.28: Fix spelling of 'features' in comment
 2022-04-11 09:50:36 +01:00
Dave Rodgman c2d1938a0d
Merge pull request #5720 from tom-cosgrove-arm/adamwolf-reasonable-2.28 
Backport 2.28: Fix spelling of 'reasonable' in comments
 2022-04-11 09:47:26 +01:00
Manuel Pégourié-Gonnard 9cd8831472
Merge pull request #5721 from tom-cosgrove-arm/roneld-1805-2.28 
Backport 2.28: Fix Shared Library compilation issue with Cmake
 2022-04-11 09:31:21 +02:00
Gilles Peskine 27ad033a96
Merge pull request #5718 from AndrzejKurek/timeless-struggles-2-28 
Backport 2.28: Remove the dependency on MBEDTLS_TIME_H from the timing module
 2022-04-08 18:43:12 +02:00
Ron Eldor b283228ea3 Fix shared library link error with cmake on Windows 
Set the library path as the current binary dir

Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>
 2022-04-08 17:16:13 +01:00
Adam Wolf ef30d90cf0 Fix spelling of 'reasonable' in comments 
Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>
 2022-04-08 17:02:33 +01:00
Gilles Peskine 7ece768578 Seed the PRNG even if time() isn't available 
time() is only needed to seed the PRNG non-deterministically. If it isn't
available, do seed it, but pick a static seed.

Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-04-08 08:34:50 -04:00
Andrzej Kurek 263d8f7e61 Remove the dependency on MBEDTLS_HAVE_TIME from MBEDTLS_TIMING_C 
The timing module might include time.h on its own when on
a suitable platform, even if MBEDTLS_HAVE_TIME is disabled.

Co-authored-by: Tom Cosgrove <tom.cosgrove@arm.com>
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-04-08 08:34:41 -04:00
Andrzej Kurek 2603fec329 Remove dummy timing implementation 
Having such implementation might cause issues for those that
expect to have a working implementation.
Having a compile-time error is better in such case.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-04-08 08:28:50 -04:00
Dave Rodgman 28fd4cd8e9 Update ChangeLog.d/alert_reentrant.txt 
Co-authored-by: Gilles Peskine <gilles.peskine@arm.com>
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2022-04-08 12:58:19 +01:00
Hanno Becker a349cfd585 Add ChangeLog entry 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2022-04-08 12:06:37 +01:00
Hanno Becker d9c66c0509 Make alert sending function re-entrant 
Fixes #1916

Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2022-04-08 12:06:14 +01:00
Jacob Schloss 1882b9a8cd Fix spelling of 'features' in comment 
Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>
 2022-04-08 11:48:57 +01:00
Gilles Peskine e29a837ed3
Merge pull request #5705 from AndrzejKurek/off-by-one-ssl-opt-2-28 
Backport 2.28 - Fix an off-by-one error in ssl-opt.sh
 2022-04-07 16:20:58 +02:00
Andrzej Kurek 363553b5e4 Fix an off-by-one error in ssl-opt.sh 
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-04-06 13:38:15 -04:00
Gilles Peskine 619cbfedc9
Merge pull request #5696 from yanesca/fix-lts-version-in-guidelines-2.28 
Fix lts version in guidelines [2.28 Backport]
 2022-04-05 11:11:22 +02:00
Janos Follath b71c6259b4 Fix LTS version in contributing guidelines 
The LTS branch hasn't been updated in the contributing guidelines.
Deleting it instead of updating as the information is available at the
link above and deleting prevents similar mistakes in the future.

Signed-off-by: Janos Follath <janos.follath@arm.com>
 2022-04-05 09:05:22 +01:00
Gilles Peskine a8827d190f
Merge pull request #5542 from gilles-peskine-arm/config-baremetal-size-2.28 
Backport 2.28: Disable debugging features in the primary code size measurement job
 2022-04-04 16:13:05 +02:00
Dave Rodgman f749930ab8
Merge pull request #5682 from daverodgman/migration_2.28 
Update references to old Github organisation
 2022-04-01 09:51:28 +01:00
Dave Rodgman 52af769878 Update references to old Github organisation 
Replace references to ARMmbed organisation with the new
org, Mbed-TLS, following project migration.

Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2022-03-31 14:27:24 +01:00
Manuel Pégourié-Gonnard 3a7d7b926b
Merge pull request #5670 from bensze01/typo-2.28 
[Backport 2.28] Fix comment typo in threading.c
 2022-03-30 10:00:05 +02:00
Artur Allmann e25dc1ccdc Fix typo "phtreads" to "pthreads" 
Closes issue #5349

Signed-off-by: Artur Allmann <Artur.Allmann@tptlive.ee>
 2022-03-29 17:56:55 +02:00
Manuel Pégourié-Gonnard 19f2d59184
Merge pull request #5660 from ronald-cron-arm/restore-full-compat-testing-2.28 
Backport 2.28: Restore full compat testing
 2022-03-28 18:31:25 +02:00
Ronald Cron e7dad1f616 ssl_tls.c: Fix inappropriate use of ssl context 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2022-03-28 12:16:56 +02:00
Ronald Cron f1ed5951e3 ssl_srv.c: Mark ETM as disabled if cipher is not CBC 
Encrypt-Then-Mac (ETM) is supported in Mbed TLS
server for TLS version geater than SSLv3 and only
for the CBC cipher mode thus make it
clear in the SSL context.

The previous code was ok as long as the check of
the ETM status was done only in the case of the CBC
cipher mode but fragile as #5573 revealed.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2022-03-28 12:16:13 +02:00
Ronald Cron c2e2876e0e compat.sh: Fix check for OpenSSL support 
If OpenSSL does not support a mode (tls12 or
dtls12 or tls13) just skip the tests involving
OpenSSL.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2022-03-25 16:32:38 +01:00
Ronald Cron 01e3c37f7b compat.sh: Restore full TLS compatibility testing 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2022-03-25 16:32:38 +01:00
Dave Rodgman ce514def84
Merge pull request #5563 from AndrzejKurek/timeless-2.28 
Backport 2.28: Fix builds with MBEDTLS_HAVE_TIME disabled and test
 2022-03-15 16:43:18 +00:00
Dave Rodgman 2f39f191e3
Merge pull request #5603 from tom-cosgrove-arm/fix_test_md_api_violation-2.28 
Backport 2.28: Fix test md api violation 2.28
 2022-03-10 09:21:52 +00:00
Gilles Peskine 76d1cb26ef
Merge pull request #5601 from SiliconLabs/erase_secret_before_free_backport_2_28 
Backport 2.28: Erase secrets in allocated memory before freeing said memory
 2022-03-07 17:04:01 +01:00
Gilles Peskine ecd119d241
Merge pull request #5605 from gilles-peskine-arm/storage-format-check-mononicity-2.28 
Backport 2.28: Check storage format tests for regressions
 2022-03-07 17:02:29 +01:00
Andrzej Kurek 478181d1f3 Refactor ssl_context_info time printing 
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-03-04 15:25:42 -05:00
Andrzej Kurek 388ee8a072 Guard cache_timeout in ssl_server2 with MBEDTLS_HAVE_TIME 
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-03-04 15:25:42 -05:00
Andrzej Kurek 161005b2be Add the timing test dependency on MBEDTLS_HAVE_TIME 
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-03-04 15:25:42 -05:00
Andrzej Kurek 65f93d5567 Fix udp_proxy dependency on MBEDTLS_HAVE_TIME 
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-03-04 15:25:42 -05:00
Andrzej Kurek 77daaad198 Provide a dummy implementation of timing.c 
Also move the self test implementation guards 
so that alternate implementations must
provide their own.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-03-04 15:25:42 -05:00
Andrzej Kurek 448cf48e18 Fix requirement mismatch in fuzz/common.c 
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-03-04 15:25:42 -05:00
Andrzej Kurek 516e1b0700 Add a missing guard for time.h in net_sockets.c 
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-03-04 15:25:42 -05:00
Andrzej Kurek c84150882b Add a changelog entry 
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2022-03-04 15:25:42 -05:00
David Horstmann 3cb5e9bf5a Use $PWD instead of $(pwd) for consistency 
Change the new baremetal all.sh tests to use $PWD rather than
calling pwd again directly.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2022-03-04 15:25:42 -05:00
David Horstmann 11d0a6feb6 programs/fuzz: Remove superfluous MBEDTLS_HAVE_TIME 
MBEDTLS_HAVE_TIME_ALT implies MBEDTLS_HAVE_TIME, so an extra
check for MBEDTLS_HAVE_TIME is not needed.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2022-03-04 15:25:42 -05:00
David Horstmann 0e4a1aa2f1 programs/test: fix build without MBEDTLS_HAVE_TIME 
Allow programs/test/udp_proxy.c to build when MBEDTLS_HAVE_TIME is
not defined. In this case, do not attempt to seed the pseudo-random
number generator used to sometimes produce corrupt packets and other
erroneous data.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2022-03-04 15:25:42 -05:00
Daniel Axtens 1a021afd7d tests: add baremetal full config build 
To be able to test utility programs for an absence of time.h, we need a
baremetal config that is not crypto only. Add one.

Signed-off-by: Daniel Axtens <dja@axtens.net>
 2022-03-04 15:25:42 -05:00
Raoul Strackx 2db000feb6 programs/ssl: Fix compile errors when MBEDTLS_HAVE_TIME is not defined 
Signed-off-by: Raoul Strackx <raoul.strackx@fortanix.com>
[dja: add some more fixes, tweak title]
Signed-off-by: Daniel Axtens <dja@axtens.net>
 2022-03-04 15:25:42 -05:00
Daniel Axtens 6f63cc7188 tests: prevent inclusion of time.h in baremetal compiles 
baremetal compiles should not include time.h, as MBEDTLS_HAVE_TIME is
undefined. To test this, provide an overriding include directory that
has a time.h which throws a meaningful error if included.

Signed-off-by: Daniel Axtens <dja@axtens.net>
 2022-03-04 15:25:42 -05:00